The first option is to run the Java Preferences app (ApplicationsUtilities). Starting with OS X 10.7 Lion, Java isnt installed by default anyway.īut, again, even if you did install Java, the odds are very, very good that you arent running a vulnerable version. That last one is the version that Mac users have installed (assuming they use Java at all).Īnd apparently few Mac users have done so: For example, according to a representative of Crashplan, the online backup service that uses Java for its client app, none of that companys users (who must have Java installed) are using the vulnerable version. Only time will tell if the company will break its quarterly patch cycle and release an emergency update sooner.Īny operating system running JRE 1.7 is affected, but the attack doesnt work against JRE 1.6. The exploit is also now available as an attack in the Metasploit penetration-testing framework, which is freely available and favored by script kiddies and security professionals (myself included) throughout the world. The attack comes through your Web browser when you browse to a malicious site and allows an attacker to silently take complete control over your computer. The attack, which originated from China, affected the latest version of the Java Runtime Environment (Java 7, version 1.7). But dont worry: This time around, theres good news for Mac users: Thanks to changes Apple has made, most of us are likely to be safe from this threat.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |